lion-gu / ioc-explorer

Related projects ⓘ

Alternatives and complementary repositories for ioc-explorer

• baronpan / SysmonHunter
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆202Updated 2 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆98Updated 3 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆122Updated 5 years ago
• We5ter / Flerken
  A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会
  ☆163Updated 5 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆255Updated 5 years ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆57Updated 4 years ago
• Z-0ne / ICS-Discovery-Tools
  ICS/SCADA/PLC Discovery Tools Releases
  ☆37Updated 9 years ago
• olafhartong / detection-sources
  ☆52Updated 5 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 2 years ago
• jymcheong / AutoTTP
  Automated Tactics Techniques & Procedures
  ☆251Updated last year
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆206Updated last year
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆73Updated 6 years ago
• sisoc-tokyo / Real-timeDetectionAD_ver2
  ☆82Updated 3 years ago
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆59Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆61Updated 4 years ago
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆175Updated 5 months ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆112Updated 5 years ago
• likekabin / CyberMonitor-APT_CyberCriminal_Campagin_Collections
  ☆31Updated 6 years ago
• vysecurity / CobaltSplunk
  Splunk Dashboard for CobaltStrike logs
  ☆85Updated 3 years ago
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆132Updated 4 years ago
• michael-yip / APTMalwareNotes
  A repository of open source reports on different malware families used in targeted cyber intrusions ("APT").
  ☆51Updated 9 years ago
• CyberMonitor / Invoke-Adversary
  Simulating Adversary Operations
  ☆93Updated 6 years ago
• DarkenCode / yara-rules
  Repository of yara rules
  ☆45Updated 9 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆76Updated 2 years ago
• tianyulab / Hunting_lateral_movement
  《横向移动攻击与检测技术》专栏文章
  ☆16Updated 5 years ago
• Cymmetria / weblogic_honeypot
  WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…
  ☆32Updated 4 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 3 years ago
• tstillz / webshell-scan
  Simple web shell scanner written in Golang.
  ☆87Updated 5 years ago